Lucene search
HistoryApr 03, 2013 - 11:56 a.m.
CVE-2013-0788
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
8.1
Confidence
High
EPSS
0.087
Percentile
94.6%
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 20.0, Firefox ESR 17.x before 17.0.5, Thunderbird before 17.0.5, Thunderbird ESR 17.x before 17.0.5, and SeaMonkey before 2.17 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Affected configurations
Node
mozillafirefoxRange≤19.0.2
ORmozillafirefoxMatch19.0
ORmozillafirefoxMatch19.0.1
Node
mozillafirefox_esrMatch17.0
ORmozillafirefox_esrMatch17.0.1
ORmozillafirefox_esrMatch17.0.2
ORmozillafirefox_esrMatch17.0.3
ORmozillafirefox_esrMatch17.0.4
Node
mozillathunderbirdMatch17.0
ORmozillathunderbirdMatch17.0.1
ORmozillathunderbirdMatch17.0.2
ORmozillathunderbirdMatch17.0.3
ORmozillathunderbirdMatch17.0.4
Node
mozillathunderbird_esrMatch17.0
ORmozillathunderbird_esrMatch17.0.1
ORmozillathunderbird_esrMatch17.0.2
ORmozillathunderbird_esrMatch17.0.3
ORmozillathunderbird_esrMatch17.0.4
Node
mozillaseamonkeyRange≤2.17beta4
ORmozillaseamonkeyMatch2.0
ORmozillaseamonkeyMatch2.0alpha_1
ORmozillaseamonkeyMatch2.0alpha_2
ORmozillaseamonkeyMatch2.0alpha_3
ORmozillaseamonkeyMatch2.0beta_1
ORmozillaseamonkeyMatch2.0beta_2
ORmozillaseamonkeyMatch2.0rc1
ORmozillaseamonkeyMatch2.0rc2
ORmozillaseamonkeyMatch2.0.1
ORmozillaseamonkeyMatch2.0.2
ORmozillaseamonkeyMatch2.0.3
ORmozillaseamonkeyMatch2.0.4
ORmozillaseamonkeyMatch2.0.5
ORmozillaseamonkeyMatch2.0.6
ORmozillaseamonkeyMatch2.0.7
ORmozillaseamonkeyMatch2.0.8
ORmozillaseamonkeyMatch2.0.9
ORmozillaseamonkeyMatch2.0.10
ORmozillaseamonkeyMatch2.0.11
ORmozillaseamonkeyMatch2.0.12
ORmozillaseamonkeyMatch2.0.13
ORmozillaseamonkeyMatch2.0.14
ORmozillaseamonkeyMatch2.1
ORmozillaseamonkeyMatch2.1alpha1
ORmozillaseamonkeyMatch2.1alpha2
ORmozillaseamonkeyMatch2.1alpha3
ORmozillaseamonkeyMatch2.1beta1
ORmozillaseamonkeyMatch2.1beta2
ORmozillaseamonkeyMatch2.1beta3
ORmozillaseamonkeyMatch2.1rc1
ORmozillaseamonkeyMatch2.1rc2
ORmozillaseamonkeyMatch2.2
ORmozillaseamonkeyMatch2.2beta1
ORmozillaseamonkeyMatch2.2beta2
ORmozillaseamonkeyMatch2.2beta3
ORmozillaseamonkeyMatch2.3
ORmozillaseamonkeyMatch2.3beta1
ORmozillaseamonkeyMatch2.3beta2
ORmozillaseamonkeyMatch2.3beta3
ORmozillaseamonkeyMatch2.3.1
ORmozillaseamonkeyMatch2.3.2
ORmozillaseamonkeyMatch2.3.3
ORmozillaseamonkeyMatch2.4
ORmozillaseamonkeyMatch2.4beta1
ORmozillaseamonkeyMatch2.4beta2
ORmozillaseamonkeyMatch2.4beta3
ORmozillaseamonkeyMatch2.4.1
ORmozillaseamonkeyMatch2.5
ORmozillaseamonkeyMatch2.5beta1
ORmozillaseamonkeyMatch2.5beta2
ORmozillaseamonkeyMatch2.5beta3
ORmozillaseamonkeyMatch2.5beta4
ORmozillaseamonkeyMatch2.6
ORmozillaseamonkeyMatch2.6beta1
ORmozillaseamonkeyMatch2.6beta2
ORmozillaseamonkeyMatch2.6beta3
ORmozillaseamonkeyMatch2.6beta4
ORmozillaseamonkeyMatch2.6.1
ORmozillaseamonkeyMatch2.7
ORmozillaseamonkeyMatch2.7beta1
ORmozillaseamonkeyMatch2.7beta2
ORmozillaseamonkeyMatch2.7beta3
ORmozillaseamonkeyMatch2.7beta4
ORmozillaseamonkeyMatch2.7beta5
ORmozillaseamonkeyMatch2.7.1
ORmozillaseamonkeyMatch2.7.2
ORmozillaseamonkeyMatch2.8
ORmozillaseamonkeyMatch2.8beta1
ORmozillaseamonkeyMatch2.8beta2
ORmozillaseamonkeyMatch2.8beta3
ORmozillaseamonkeyMatch2.8beta4
ORmozillaseamonkeyMatch2.8beta5
ORmozillaseamonkeyMatch2.8beta6
ORmozillaseamonkeyMatch2.9
ORmozillaseamonkeyMatch2.9beta1
ORmozillaseamonkeyMatch2.9beta2
ORmozillaseamonkeyMatch2.9beta3
ORmozillaseamonkeyMatch2.9beta4
ORmozillaseamonkeyMatch2.9.1
ORmozillaseamonkeyMatch2.10
ORmozillaseamonkeyMatch2.10beta1
ORmozillaseamonkeyMatch2.10beta2
ORmozillaseamonkeyMatch2.10beta3
ORmozillaseamonkeyMatch2.10.1
ORmozillaseamonkeyMatch2.11
ORmozillaseamonkeyMatch2.11beta1
ORmozillaseamonkeyMatch2.11beta2
ORmozillaseamonkeyMatch2.11beta3
ORmozillaseamonkeyMatch2.11beta4
ORmozillaseamonkeyMatch2.11beta5
ORmozillaseamonkeyMatch2.11beta6
ORmozillaseamonkeyMatch2.12
ORmozillaseamonkeyMatch2.12beta1
ORmozillaseamonkeyMatch2.12beta2
ORmozillaseamonkeyMatch2.12beta3
ORmozillaseamonkeyMatch2.12beta4
ORmozillaseamonkeyMatch2.12beta5
ORmozillaseamonkeyMatch2.12beta6
ORmozillaseamonkeyMatch2.12.1
ORmozillaseamonkeyMatch2.13
ORmozillaseamonkeyMatch2.13beta1
ORmozillaseamonkeyMatch2.13beta2
ORmozillaseamonkeyMatch2.13beta3
ORmozillaseamonkeyMatch2.13beta4
ORmozillaseamonkeyMatch2.13beta5
ORmozillaseamonkeyMatch2.13beta6
ORmozillaseamonkeyMatch2.13.1
ORmozillaseamonkeyMatch2.13.2
ORmozillaseamonkeyMatch2.14
ORmozillaseamonkeyMatch2.14beta1
ORmozillaseamonkeyMatch2.14beta2
ORmozillaseamonkeyMatch2.14beta3
ORmozillaseamonkeyMatch2.14beta4
ORmozillaseamonkeyMatch2.14beta5
ORmozillaseamonkeyMatch2.15
ORmozillaseamonkeyMatch2.15beta1
ORmozillaseamonkeyMatch2.15beta2
ORmozillaseamonkeyMatch2.15beta3
ORmozillaseamonkeyMatch2.15beta4
ORmozillaseamonkeyMatch2.15beta5
ORmozillaseamonkeyMatch2.15beta6
ORmozillaseamonkeyMatch2.15.1
ORmozillaseamonkeyMatch2.15.2
ORmozillaseamonkeyMatch2.16
ORmozillaseamonkeyMatch2.16beta1
ORmozillaseamonkeyMatch2.16beta2
ORmozillaseamonkeyMatch2.16beta3
ORmozillaseamonkeyMatch2.16beta4
ORmozillaseamonkeyMatch2.16beta5
ORmozillaseamonkeyMatch2.16.1
ORmozillaseamonkeyMatch2.16.2
ORmozillaseamonkeyMatch2.17beta1
ORmozillaseamonkeyMatch2.17beta2
ORmozillaseamonkeyMatch2.17beta3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mozilla | firefox | * | cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:* |
| mozilla | firefox | 19.0 | cpe:2.3:a:mozilla:firefox:19.0:*:*:*:*:*:*:* |
| mozilla | firefox | 19.0.1 | cpe:2.3:a:mozilla:firefox:19.0.1:*:*:*:*:*:*:* |
| mozilla | firefox_esr | 17.0 | cpe:2.3:a:mozilla:firefox_esr:17.0:*:*:*:*:*:*:* |
| mozilla | firefox_esr | 17.0.1 | cpe:2.3:a:mozilla:firefox_esr:17.0.1:*:*:*:*:*:*:* |
| mozilla | firefox_esr | 17.0.2 | cpe:2.3:a:mozilla:firefox_esr:17.0.2:*:*:*:*:*:*:* |
| mozilla | firefox_esr | 17.0.3 | cpe:2.3:a:mozilla:firefox_esr:17.0.3:*:*:*:*:*:*:* |
| mozilla | firefox_esr | 17.0.4 | cpe:2.3:a:mozilla:firefox_esr:17.0.4:*:*:*:*:*:*:* |
| mozilla | thunderbird | 17.0 | cpe:2.3:a:mozilla:thunderbird:17.0:*:*:*:*:*:*:* |
| mozilla | thunderbird | 17.0.1 | cpe:2.3:a:mozilla:thunderbird:17.0.1:*:*:*:*:*:*:* |
References
lists.opensuse.org/opensuse-security-announce/2013-04/msg00009.html
lists.opensuse.org/opensuse-security-announce/2013-04/msg00010.html
lists.opensuse.org/opensuse-security-announce/2013-04/msg00013.html
lists.opensuse.org/opensuse-security-announce/2013-05/msg00019.html
lists.opensuse.org/opensuse-updates/2013-06/msg00012.html
rhn.redhat.com/errata/RHSA-2013-0696.html
rhn.redhat.com/errata/RHSA-2013-0697.html
www.debian.org/security/2013/dsa-2699
www.mozilla.org/security/announce/2013/mfsa2013-30.html
www.ubuntu.com/usn/USN-1791-1
bugzilla.mozilla.org/show_bug.cgi?id=635852
bugzilla.mozilla.org/show_bug.cgi?id=771942
bugzilla.mozilla.org/show_bug.cgi?id=784730
bugzilla.mozilla.org/show_bug.cgi?id=813442
bugzilla.mozilla.org/show_bug.cgi?id=827870
bugzilla.mozilla.org/show_bug.cgi?id=834240
bugzilla.mozilla.org/show_bug.cgi?id=839621
bugzilla.mozilla.org/show_bug.cgi?id=840263
bugzilla.mozilla.org/show_bug.cgi?id=840353
bugzilla.mozilla.org/show_bug.cgi?id=852923
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16629
Related
veracode
veracode
Denial Of Service
2019-01-15 08:51:15
Same-Origin Policy Bypass
2019-05-02 04:44:29
Arbitrary Code Execution
2019-05-02 04:44:29
cve
cve
CVE-2013-0788
2013-04-03 11:56:21
cvelist
cvelist
CVE-2013-0788
2013-04-03 10:00:00
prion
prion
Memory corruption
2013-04-03 11:56:00
ubuntucve
ubuntucve
CVE-2013-0788
2013-04-03 00:00:00
mozilla
mozilla
Miscellaneous memory safety hazards (rv:20.0 / rv:17.0.5) — Mozilla
2013-04-02 00:00:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2013-30) - Linux
2021-11-11 00:00:00
CentOS Update for thunderbird CESA-2013:0697 centos5
2013-04-05 00:00:00
Oracle: Security Advisory (ELSA-2013-0697)
2015-10-06 00:00:00
redhat
redhat
(RHSA-2013:0696) Critical: firefox security update
2013-04-02 00:00:00
(RHSA-2013:0697) Important: thunderbird security update
2013-04-02 00:00:00
nessus
nessus
Oracle Linux 6 : thunderbird (ELSA-2013-0697)
2013-07-12 00:00:00
Scientific Linux Security Update : firefox on SL5.x, SL6.x i386/x86_64 (20130402)
2013-04-03 00:00:00
CentOS 5 / 6 : firefox / xulrunner (CESA-2013:0696)
2013-04-03 00:00:00
oraclelinux
oraclelinux
firefox security update
2013-04-02 00:00:00
thunderbird security update
2013-04-02 00:00:00
centos
centos
thunderbird security update
2013-04-03 04:39:37
firefox, xulrunner security update
2013-04-03 04:34:09
ubuntu
ubuntu
Thunderbird vulnerabilities
2013-04-08 00:00:00
Unity Firefox Extension update
2013-04-04 00:00:00
Firefox vulnerabilities
2013-04-04 00:00:00
suse
suse
Mozilla Firefox and others: Update to 20.0/17.0.5 releases (important)
2013-04-05 18:06:10
Security update for Mozilla Firefox (important)
2013-05-31 19:04:12
Mozilla Firefox and others: Update to Firefox 20.0 release (important)
2013-04-05 15:06:14
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2013-04-03 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2013-04-02 00:00:00
debian
debian
[SECURITY] [DSA 2699-1] iceweasel security update
2013-06-02 16:37:13
ibm
ibm
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-09-27 00:00:00
osv
osv
MozillaThunderbird-45.5.1-1.1 on GA media
2024-06-15 00:00:00
MozillaFirefox-50.1.0-1.1 on GA media
2024-06-15 00:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
8.1
Confidence
High
EPSS
0.087
Percentile
94.6%
Related for NVD:CVE-2013-0788